Secure web container for a secure online user environment
First Claim
1. A secure system for providing a secure online environment for interacting with downstream enterprise sites using web-based applications, the system comprising:
- a) a client machine interface comprising a secure channel operable to communicate with a user client machine through an image protocol, whereby HTML commands are not passed from the downstream enterprise sites to the user client machine;
b) a policy database operable to store policies for user access to and interaction with the downstream enterprise sites, the policy database comprising policy information that is useful throughout the interaction between the user client machine and the downstream enterprise sites;
c) a policy portal in communication with the policy database, the policy portal operable to provide access to an administrator for configuring the policies for user access to and interaction with the downstream enterprise sites;
d) an authenticated service machine in communication with the client machine interface and the policy database, wherein the authenticated service machine is operable to access and interact with the downstream enterprise sites on behalf of a user at the user client machine and the authenticated service machine further comprises a secure environment and a secure web container within the secure environment; and
,e) a secure user data store in communication with the authenticated service machine, the secure user data store operable to store session-specific user credentials for accessing and interacting with the downstream enterprise sites in accordance with the policies stored in the policy database;
f) whereby the authenticated service machine is operable to manage the secure web container within the secure environment to provide automatic downstream enterprise site logins using the user credentials without the user credentials having to be transmitted to the user client machine.
1 Assignment
0 Petitions
Accused Products
Abstract
Disclosed herein are systems and methods that allow for secure access to websites and web-based applications and other resources available through the browser. Also described are systems and methods for invocation of a secure web container which may display data representative of a requesting party'"'"'s application at a user'"'"'s machine. The secure web container is invoked upon receipt of an API call from the requesting party. Thus, described in the present specification are systems and methods for constructing and destroying private, secure, browsing environments (a secure disposable web container), insulating the user and requesting parties from the threats associated with being online for the purposes of providing secure, policy-based interaction with a requesting party'"'"'s online services.
36 Citations
17 Claims
-
1. A secure system for providing a secure online environment for interacting with downstream enterprise sites using web-based applications, the system comprising:
-
a) a client machine interface comprising a secure channel operable to communicate with a user client machine through an image protocol, whereby HTML commands are not passed from the downstream enterprise sites to the user client machine; b) a policy database operable to store policies for user access to and interaction with the downstream enterprise sites, the policy database comprising policy information that is useful throughout the interaction between the user client machine and the downstream enterprise sites; c) a policy portal in communication with the policy database, the policy portal operable to provide access to an administrator for configuring the policies for user access to and interaction with the downstream enterprise sites; d) an authenticated service machine in communication with the client machine interface and the policy database, wherein the authenticated service machine is operable to access and interact with the downstream enterprise sites on behalf of a user at the user client machine and the authenticated service machine further comprises a secure environment and a secure web container within the secure environment; and
,e) a secure user data store in communication with the authenticated service machine, the secure user data store operable to store session-specific user credentials for accessing and interacting with the downstream enterprise sites in accordance with the policies stored in the policy database; f) whereby the authenticated service machine is operable to manage the secure web container within the secure environment to provide automatic downstream enterprise site logins using the user credentials without the user credentials having to be transmitted to the user client machine. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for providing a secure online environment for interacting with downstream enterprise sites using web-based applications, the method comprising the steps of:
-
a) providing a client machine interface comprising a secure channel operable to communicate with a user client machine through an image protocol, whereby HTML commands are not passed from the downstream enterprise sites to the user client machine; b) providing a policy database operable to store policies for user access to and interaction with the downstream enterprise sites, the policy database comprising policy information that is useful throughout the interaction between the user client machine and the downstream enterprise sites; c) providing a policy portal in communication with the policy database, the policy portal operable to provide access to an administrator for configuring the policies for user access to and interaction with the downstream enterprise sites; d) providing an authenticated service machine in communication with the client machine interface and the policy database, wherein the authenticated service machine is operable to access and interact with the downstream enterprise sites on behalf of a user at the user client machine and the authenticated service machine further comprises a secure environment and a secure web container within the secure environment; and
,e) providing a secure user data store in communication with the authenticated service machine, the secure user data store operable to store session-specific user credentials for accessing and interacting with the downstream enterprise sites in accordance with the policies stored in the policy database; f) whereby the authenticated service machine is operable to manage the secure web container within the secure environment to provide automatic downstream enterprise site logins using the user credentials without the user credentials having to be transmitted to the user client machine. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
Specification